Update-AdfsCertificate
Update-AdfsCertificate is accessible with the help of adfs module. To install adfs on your system please refer to this adfs.
Synopsis
Updates the certificates of AD FS.
Description
The Update-AdfsCertificate cmdlet creates new certificates for Active Directory Federation Services (AD FS). When automatic certificate rollover is enabled and AD FS 2.0 is managing the certificates that are used for signing, this update cmdlet can be used to initiate a rollover.
Parameters
-CertificateType
Specifies the type of certificate to rollover. The acceptable values for this parameter are:
-- Token-Encryption
-- Token-Signing
Required? false
Position? 1
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-PassThru <SwitchParameter>
Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Urgent <SwitchParameter>
Indicates that the certificate rollover should happen immediately. An urgent rollover removes older certificates immediately. It might result in a service outage as trusts update to use the new certificates.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Confirm <SwitchParameter>
Prompts you for confirmation before running the cmdlet.Prompts you for confirmation before running the cmdlet.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
-WhatIf <SwitchParameter>
Shows what would happen if the cmdlet runs. The cmdlet is not run.Shows what would happen if the cmdlet runs. The cmdlet is not run.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
Syntax
Update-AdfsCertificate [[-CertificateType] <String>] [-Urgent] [-PassThru] [-WhatIf] [-Confirm] [<CommonParameters>]
Notes
The Urgent parameter option is useful for emergency rollover situations in which a key might be compromised.
——————Example 1——————
Update a token-signing certificate
PS C:>Update-AdfsCertificate -CertificateType “Token-Signing”
This command updates the token-signing certificate.
You can check the Version, CommandType and Source of this cmdlet by giving below command.
Get-Command Update-AdfsCertificate
You can also read about
- Add-AdfsCertificate
- Get-AdfsCertificate
- Remove-AdfsCertificate
- Set-AdfsCertificate